codersanjay


Rank #79 Level 3



53
unique bugs discovered

60
reports accepted
95 Accuracy

Vulnerability Types Found

Bug Submissions & total bug count


Hackevent (FirstBlood) Activity

Report Title Event ID Severity Vulnerability Type
PII leak via /drpanel/drapi/qp.php?name=sanjay FirstBlood v1 CRITICAL Authorisation Issue
Invitation code leaked on reddit FirstBlood v1 High Authorisation Issue
IDOR on newly registered doctor FirstBlood v1 CRITICAL Application/Business Logic
IDOR on /drpanel/drapi/qp.php endpoint FirstBlood v1 CRITICAL Application/Business Logic
Can know who are attending an HackerBack event FirstBlood v1 CRITICAL Info leak
Open Redirect via logout ref parameter FirstBlood v1 Low Open Redirect
Stored XSS on cancelled.php endpoint FirstBlood v1 High Stored XSS
Reflected XSS on login Page via ref paramater FirstBlood v1 Medium Reflective XSS